Yi Huang,Mohammad Esmalifalak,Huy Nguyen,Rong Zheng,Zhu Han,Husheng Li,Lingyang Song

DOI: https://doi.org/10.1109/mcom.2013.6400435

IF: 9.03

2013-01-01

IEEE Communications Magazine

Abstract:In modern smart grid networks, the traditional power grid is empowered by technological advances in sensing, measurement, and control devices with two-way communications between the suppliers and consumers. The smart grid integration helps the power grid networks to be smarter, but it also increases the risk of attacks because of the existing obsolete cyber-infrastructure. In this article, we focus on bad data injection attacks for smart grid. The basic problem formulation is presented, and the special type of stealth attack is discussed. Then we investigate the strategies of defenders and attackers, respectively. Specifically, from the defender's perspective, an adaptive cumulative sum test is able to determine the possible existence of adversaries at the control center as quickly as possible. From the attacker's point of view, independent component analysis is employed for the attackers to make inferences through phasor observations without prior knowledge of the power grid topology. The inferred structural information can then be used to launch stealth attacks.

Yun Gu,Ting Liu,Dai Wang,Xiaohong Guan,Zhanbo Xu

DOI: https://doi.org/10.1109/ICC.2013.6655273

2013-01-01

Abstract:Bad Data Injection (BDI) in Smart Grid is considered to be the most dangerous cyber attack, as it might lead to energy theft on the end users, false dispatch on the distribution process, and device breakdown on the power generation. State Estimation and Bad Data Detection, which are applied to reduce the observation errors and detect false data in the traditional power grid, could not detect the bad data in smart grid. In this paper, three BDI attack cases in IEEE 14-bus system are designed to bypass the traditional bad data detection. The potential risks on economy and security are analyzed exploiting the MATPOWER. A new method based on Distributed State Estimation (DSE) is proposed to detect BDI, named as DSE-based bad data detection. The power system is divided into several subsystems, and a Chi-squares test is applied to detect the bad data respectively in each subsystem. Simulation results demonstrate that the DSE-based bad data detection can detect all bad data in three attack cases. Moreover, it can locate the bad data in specific subsystem which is helpful for the further identification.

Ting Lin,Yun Gu,Dai Wang,Yuhong Gui,Xiaohong Guan

DOI: https://doi.org/10.1109/infcom.2013.6567175

2013-01-01

Abstract:Bad data injection is one of most dangerous attacks in smart grid, as it might lead to energy theft on the end users and device breakdown on the power generation. The attackers can construct the bad data evading the bad data detection mechanisms in power system. In this paper, a novel method, named as Adaptive Partitioning State Estimation (APSE), is proposed to detect bad data injection attack. The basic ideas are: 1) the large system is divided into several subsystems to improve the sensitivity of bad data detection; 2) the detection results are applied to guide the subsystem updating and re-partitioning to locate the bad data. Two attack cases are constructed to inject bad data into an IEEE 39-bus system, evading the traditional bad data detection mechanism. The experiments demonstrate that all bad data can be detected and located within a small area using APSE.

Ruilong Deng,Gaoxi Xiao,Rongxing Lu,Hao Liang,Athanasios V. Vasilakos

DOI: https://doi.org/10.1109/tii.2016.2614396

IF: 12.3

2017-01-01

IEEE Transactions on Industrial Informatics

Abstract:The accurately estimated state is of great importance for maintaining a stable running condition of power systems. To maintain the accuracy of the estimated state, bad data detection (BDD) is utilized by power systems to get rid of erroneous measurements due to meter failures or outside attacks. However, false data injection (FDI) attacks, as recently revealed, can circumvent BDD and insert any bias into the value of the estimated state. Continuous works on constructing and/or protecting power systems from such attacks have been done in recent years. This survey comprehensively overviews three major aspects: constructing FDI attacks; impacts of FDI attacks on electricity market; and defending against FDI attacks. Specifically, we first explore the problem of constructing FDI attacks, and further show their associated impacts on electricity market operations, from the adversary's point of view. Then, from the perspective of the system operator, we present countermeasures against FDI attacks. We also outline the future research directions and potential challenges based on the above overview, in the context of FDI attacks, impacts, and defense.

Kecheng Li,Genyuan Yang,Shanling Dong,Meiqin Liu

DOI: https://doi.org/10.23919/ccc63176.2024.10661728

2024-01-01

Abstract:The increasing integration of smart grid technologies in multiregional power systems improves efficiency but also exposes them to cyber security threats, especially false data injection attacks. In this paper, we address this challenge by proposing a distributed detection framework tailored for multi-regional power systems. Traditional centralized approaches are insufficient to cope with the dynamic and decentralized nature of these systems. The framework aims to simultaneously monitor and analyze multiple regions in real-time, enhancing the system’s ability to withstand false data injection attacks. This study outlines the proposed framework and provides simulation results for validation, emphasizing the need for proactive defense mechanisms in safeguarding the data integrity of power systems.

Zhitao Guan,Nan Sun,Yue Xu,Tingting Yang

DOI: https://doi.org/10.1504/IJWMC.2015.066756

2015-01-01

Abstract:The smart grid has attracted great attention in the recent years. It is poised to transform a centralised, producer-controlled network to a decentralised, consumer-interactive network supported by fine-grained monitoring. However, owing to the interactive nature of the smart grid, it faces the threat of being attacked. False data injection is a rapidly growing problem in smart grids. The multitude and variety of both the attacks and the defence approaches are overwhelming. In this paper, the attacks and countermeasures about false data injection in smart grids are discussed and analysed in detail. The attack classification criteria were selected to highlight commonalities and important features of the power grid. The attacks are classified as attacks based on Direct Current (DC) power model, Alternating Current (AC) power model and control system model; the countermeasures are classified as attack detection methods and new state estimation methods. With a better understanding of the problem and the current solution space, some existing problems and the future work are discussed in detail.

Meng Zhang,Chao Shen,Ning He,SiCong Han,Qi Li,Qian Wang,XiaoHong Guan

DOI: https://doi.org/10.1007/s11431-019-9544-7

2019-01-01

Science China Technological Sciences

Abstract:As a typical representative of the so-called cyber-physical system, smart grid reveals its high efficiency, robustness and reliability compared with conventional power grid. However, due to the deep integration of electrical components and computinginformation in cyber space, smart gird is vulnerable to malicious attacks, especially for a type of attacks named false data injection attacks (FDIAs). FDIAs are capable of tampering meter measurements and affecting the results of state estimation stealthily, which severely threat the security of smart gird. Due to the significantinfluence of FDIAs on smart grid, the research related to FDIAs has received considerable attention over the past decade. This paper aims to summarize recent advances in FDIAs against smart grid state estimation, especially from the aspects of background materials, construction methods, detection and defense strategies. Moreover, future research directions are discussed and outlined by analyzing existing results. It is expected that through the review of FDIAs, the vulnerabilities of smart grid to malicious attacks can be further revealed and more attention can be devoted to the detection and defense of cyber-physical attacks against smart grid.

Jichao Bi,Fengji Luo,Gaoqi Liang,Xiaofan Yang,Shibo He,Zhao Yang Dong

DOI: https://doi.org/10.1109/TNSE.2022.3197682

IF: 6.6

2023-01-01

IEEE Transactions on Network Science and Engineering

Abstract:Cyber-physical security has been becoming an important issue for many critical infrastructures in human society, including electrical power grids. This paper proposes an impact assessment framework for smart grids suffering false data injection attack against smart meters. Firstly, the propagation model of malicious false data codes in smart meter communication networks is established. Based on this, a security-constrained economic dispatch model is formulated to assess how false data codes would mislead the grid operator's actions. A defense strategy is proposed, which enhances the grid's vulnerability through effectively deploying defense resources in smart meter networks. Extensive numerical simulations are conducted to evaluate the impact of different attack scenarios as well as the effectiveness of the defense strategy.

Zhenyong Zhang,Ruilong Deng,David K. Y. Yau,Peng Cheng

DOI: https://doi.org/10.1109/jiot.2021.3049818

IF: 10.6

2021-01-01

IEEE Internet of Things Journal

Abstract:Data integrity attack (DIA) is one class of threatening cyber attacks against the Internet-of-Things (IoT)-based smart grid. With the assumption that the attacker is capable of obtaining complete or incomplete information of the system topology and branch parameters, it has been widely recognized that the highly synthesized DIA can evade being detected and undermine the smart grid state estimation. However, the branch parameters cannot be easily obtained or inferred by the attacker in practice. They can be changed or disturbed with time. In this article, we complete the class of DIA by designing the zero-parameter-information DIA (ZDIA), which makes it possible for the attacker to execute stealthy data tampering attacks without any information of the branch parameters. Only the topology information about the cut line is required to construct such attack. We prove that, the attacker can arbitrarily modify the state estimate of a one-degree bus , which is connected to the outside only by a single cut line; and modify the state estimates of all buses, with the same arbitrary bias, in a one-degree super-bus , which is a group of buses that is connected to the outside only by a single cut line. Besides, we extend ZDIA to the cases where a bus and super-bus are connected to the outside only by several cut lines. Moreover, we propose two countermeasures to address the topology vulnerability exploited by ZDIA, and present a branch perturbation strategy to defend against general DIAs. Finally, we conduct extensive simulations with the IEEE standard power systems to validate the theoretical results.

Aidong Xu,Tengyue Zhang,Liang Chen,Qing Li,Yunan Zhang,Haojie Lin,Peiyao Wang,Sihui Wu,Runhui Zhao,Yixin Jiang

DOI: https://doi.org/10.1088/1755-1315/693/1/012010

2021-01-01

IOP Conference Series Earth and Environmental Science

Abstract:Abstract The concealed false data injection (FDI) attack in the smart grid can successfully pass the power system state estimation commonly used in the residual bad data test without being detected by the existing algorithms, resulting in the state estimation error of the control center and disturbing the normal operation of the power system. In this paper, false data injection attack and attack detection are carried out in the actual power edge security protection system, microgrid control system and intelligent energy security protection system. Among them, the false data attack part simulates the attack of the voltage phase angle, and compares it with the ordinary attack method, and demonstrates the success of these attacks in the actual power grid system.

Morteza Talebi,Chaoyong Li,Zhihua Qu

DOI: https://doi.org/10.1109/SAM.2012.6250520

2012-01-01

Abstract:For a power grid, false data injection attacks attempt to exploit the configuration and information structure of the power system, introduce erroneous but conforming values into certain state variables, and evade the existing detection techniques based on residual testing, leading to severe security threat to the overall system. Accordingly, an enhanced method of evading false data injection in power grids is proposed. Since the power system can typically be partitioned into a group of microgrids the proposed approach shows that the microgrids (i.e., their boundaries and information sharing structures) are dynamically reconfigured, which makes it impossible to organize a synchronized data injection that exploits a fixed configuration and coordinately attacks certain meters in the configuration. Examples are used to demonstrate the effectiveness of the proposed scheme.

Muhammad Irfan,Alireza Sadighian,Adeen Tanveer,Shaikha J. Al-Naimi,Gabriele Oligeri

DOI: https://doi.org/10.1049/cps2.12093

2023-08-20

Abstract:In the recent years cyberattacks to smart grids are becoming more frequent Among the many malicious activities that can be launched against smart grids False Data Injection FDI attacks have raised significant concerns from both academia and industry FDI attacks can affect the internal state estimation processcritical for smart grid monitoring and controlthus being able to bypass conventional Bad Data Detection BDD methods Hence prompt detection and precise localization of FDI attacks is becomming of paramount importance to ensure smart grids security and safety Several papers recently started to study and analyze this topic from different perspectives and address existing challenges Datadriven techniques and mathematical modelings are the major ingredients of the proposed approaches The primary objective of this work is to provide a systematic review and insights into FDI attacks joint detection and localization approaches considering that other surveys mainly concentrated on the detection aspects without detailed coverage of localization aspects For this purpose we select and inspect more than forty major research contributions while conducting a detailed analysis of their methodology and objectives in relation to the FDI attacks detection and localization We provide our key findings of the identified papers according to different criteria such as employed FDI attacks localization techniques utilized evaluation scenarios investigated FDI attack types application scenarios adopted methodologies and the use of additional data Finally we discuss open issues and future research directions

Cryptography and Security,Signal Processing

Xiaofei He,Xinyu Yang,Jie Lin,Linqiang Ge,Wei Yu,Qingyu Yang

DOI: https://doi.org/10.1109/PCCC.2015.7410291

2015-01-01

Abstract:The smart grid is a new type of energy-based cyber-physical system (CPS), which enables interactions between the utility provider and customers through smart meters and advanced metering infrastructures (AMU. Nonetheless, an adversary can inject misleading energy usage information to the utility provider through compromised smart meters and disrupt the grid and electricity market operations. To address this issue, in this paper, we propose an Energy Dispatching False Data Defense (EDF2D) approach, which can effectively detect the forged interactive information between customers and the utility provider with a great accuracy and mitigate the damage raised by attacks on grid operations. Particularly, EDF2D uses the historical interactive information of normal users to determine the conditional probabilities of data anomalies. Based on these conditional probabilities, a Bayesian network designed for detecting false data can be established by EDF2D, and this network is then used to confirm the authenticity of interactive information received by the utility provider originally transmitted from customers. Through a combination of theoretical analysis and performance evaluation, our experimental data shows that EDF2D can effectively detect harmful false interactive data forged by the adversary and mitigate false data injection attacks on smart grid operations.

Jie Lin,Wei Yu,Xinyu Yang,Guobin Xu,Wei Zhao

DOI: https://doi.org/10.1109/iccps.2012.26

2012-01-01

Abstract:Smart Grid is a new type of energy-based cyber-physical system (CPS) that will provide reliable, secure, and efficient energy transmission and distribution. The way to secure the distributed energy routing process that efficiently utilizes the distributed energy resources and minimizes the energy transmission overhead is essential in smart grid. In this paper, we study the vulnerability of the distributed energy routing process and investigate novel false data injection attacks against the energy routing process. We consider several general attacks, in which the adversary may manipulate the quantity of energy supply, the quantity of energy response, and the link state of energy transmission. The forged data injected by those attacks will cause imbalanced demand and supply, increase the cost for energy distribution, and disrupt the energy distribution. We formally model these attacks and quantitatively analyze their impact on energy distribution. Our evaluation data show that those attacks can effectively disrupt the effectiveness of energy distribution process, causing significant supplied energy loss, energy transmission cost and the number of outage users.

Ruilong Deng,Hao Liang

DOI: https://doi.org/10.1109/TII.2018.2863256

IF: 12.3

2019-01-01

IEEE Transactions on Industrial Informatics

Abstract:In this paper, we consider false data injection (FDI) attacks with limited information of transmission-line susceptances and new countermeasures in smart grids. First, we prove that the adversary could launch FDI attacks to modify the state variable on a bus or superbus only if he/she knows the susceptance of every transmission line that is incident to that bus or superbus. Based on this observation, we provide a new countermeasure against FDI attacks, i.e., to make the susceptances of <inline-formula xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink"><tex-math notation="LaTeX">$n-1$</tex-math></inline-formula> interconnected transmission lines that cover all buses unknown to the adversary (e.g., by proactively perturbing transmission-line susceptances through distributed flexible AC transmission system (D-FACTS) devices), where <inline-formula xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink"><tex-math notation="LaTeX">$n$</tex-math></inline-formula> is the total number of buses. This new countermeasure can work alone or in conjunction with traditional ones to reduce the number of meter measurements/state variables that are to be secured against FDI attacks. The implementation of FDI attacks with limited susceptance information and the effectiveness of new countermeasures are demonstrated by using an illustrative 4-bus power system and the IEEE 9-bus, 14-bus, 30-bus, 118-bus, and 300-bus test power systems.

Da-Tian Peng,Jianmin Dong,Qinke Peng

DOI: https://doi.org/10.1109/LSP.2020.2974097

2020-01-01

IEEE Signal Processing Letters

Abstract:Increasing integration of the information communication technology introduces security vulnerabilities into smart grid. False data injection attack can exploit the cyber vulnerabilities to compromise the physical grid without being detected. However, the existing attack strategies only consider the electrical characteristic of power flow calculation to induce multiple overloaded branches. On this ...

Jichao Bi,Shibo He,Fengji Luo,Jiming Chen,Da -Wen Huang,Mingyang Sun

DOI: https://doi.org/10.1109/trustcom56396.2022.00024

2022-01-01

Abstract:Backboned by smart meter networks, Advanced Metering Infrastructures (AMIs) play a critical role in smart grids. This paper studies a new False Data Injection Attack (FDIA) scenario targeting AMIs, in which the attacker injects and propagates computer worms (i.e., false data codes) to maliciously increase the readings of networked smart meters and create economic loss to the end customers. This paper establishes the false data code propagation and attack models in such a scenario; based on this, this paper proposes a differential game model for describing the attack and defense process for FDIA against AMIs. A computationally efficient algorithm is developed to solve the proposed differential model and obtain the potential Nash equilibrium (NE) strategy pair. Extensive numerical simulations are conducted to validate the effectiveness of the proposed method under different energy tariff structures.

Ömer Sen,Dennis van der Velde,Philipp Linnartz,Immanuel Hacker,Martin Henze,Michael Andres,Andreas Ulbig

DOI: https://doi.org/10.48550/arXiv.2110.09162

2021-10-18

Abstract:With the increasing use of information and communication technology in electrical power grids, the security of energy supply is increasingly threatened by cyber-attacks. Traditional cyber-security measures, such as firewalls or intrusion detection/prevention systems, can be used as mitigation and prevention measures, but their effective use requires a deep understanding of the potential threat landscape and complex attack processes in energy information systems. Given the complexity and lack of detailed knowledge of coordinated, timed attacks in smart grid applications, we need information and insight into realistic attack scenarios in an appropriate and practical setting. In this paper, we present a man-in-the-middle-based attack scenario that intercepts process communication between control systems and field devices, employs false data injection techniques, and performs data corruption such as sending false commands to field devices. We demonstrate the applicability of the presented attack scenario in a physical smart grid laboratory environment and analyze the generated data under normal and attack conditions to extract domain-specific knowledge for detection mechanisms.

Cryptography and Security,Networking and Internet Architecture,Systems and Control

Po-Yu Chen,Shusen Yang,Julie A. McCann,Jie Lin,Xinyu Yang

DOI: https://doi.org/10.1109/MCOM.2015.7045410

IF: 9.03

2015-01-01

IEEE Communications Magazine

Abstract:Smart grids are essentially electric grids that use information and communication technology to provide reliable, efficient electricity transmission and distribution. Security and trust are of paramount importance. Among various emerging security issues, FDI attacks are one of the most substantial ones, which can significantly increase the cost of the energy distribution process. However, most current research focuses on countermeasures to FDIs for traditional power grids rather smart grid infrastructures. We propose an efficient and real-time scheme to detect FDI attacks in smart grids by exploiting spatial-temporal correlations between grid components. Through realistic simulations based on the US smart grid, we demonstrate that the proposed scheme provides an accurate and reliable solution.

Jinping Hao,Robert J. Piechocki,Dritan Kaleshi,Woon Hau Chin,Zhong Fan

DOI: https://doi.org/10.1109/tii.2015.2475695

IF: 12.3

2015-01-01

IEEE Transactions on Industrial Informatics

Abstract:This paper discusses malicious false data injection attacks on the wide area measurement and monitoring system in smart grids. First, methods of constructing sparse stealth attacks are developed for two typical scenarios: 1) random attacks in which arbitrary measurements can he compromised; and 2) targeted attacks in which specified state variables are modified. It is already demonstrated that stealth attacks can always exist if the number of compromised measurements exceeds a certain value. In this paper, it is found that random undetectable attacks can be accomplished by modifying only a much smaller number of measurements than this value. It is well known that protecting the system from malicious attacks can be achieved by making a certain subset of measurements immune to attacks. An efficient greedy search algorithm is then proposed to quickly find this subset of measurements to be protected to defend against stealth attacks. It is shown that this greedy algorithm has almost the same performance as the brute-force method, but without the combinatorial complexity. Third, a robust attack detection method is discussed. The detection method is designed based on the robust principal component analysis problem by introducing element-wise constraints. This method is shown to be able to identify the real measurements, as well as attacks even when only partial observations are collected. The simulations are conducted based on IEEE test systems.